According to a new Pew Research Center survey, a majority of Americans cannot identify an example of two-factor authentication and fewer than half of Americans can correctly answer the questions posed on Pew’s digital knowledge quiz. […]
Tags
Cybersecurity
The Securities and Exchange Commission (SEC) Office of Inspector General (OIG) has identified several management and performance challenges at the agency in a report dated Oct. 7. […]
The Cybersecurity and Infrastructure Security Agency (CISA) remains highly confident in the agency’s efforts to defend against nation-state cyber threats including those targeting U.S. elections and supply chains, a senior CISA official said today. […]
Cybersecurity services provider CrowdStrike said in its latest half-year report that it tracked a big spike in electronic crime (eCrime) exploits in the first half of 2019, and concluded that perpetrators have continued to mature their ability to offer criminal services for hire. […]
The Government Accountability Office (GAO) identified in a new report several cybersecurity risks to the U.S. electric grid and called upon the Department of Energy (DoE) to develop an improved Federal strategy to protect against cyber threats to the grid. […]
The Senate on Sept. 24 passed a bill that would increase the Federal government’s ability to respond to and aid government agencies and private-sector companies that are involved in major cyber incidents. […]
A new report from the Federal Housing Finance Agency (FHFA) Office of Inspector General (OIG) finds that FHFA doesn’t have an agency-wide cybersecurity incident data analysis program based on a consistent data set, and that it lacks sufficient information to conduct trend or other time-series analyses for security purposes. […]
The Senate version of the Fiscal Year 2020 National Defense Authorization Act (NDAA) includes multiple provisions in the bill’s report that push the Department of Defense (DoD) to make greater investments in cybersecurity and artificial intelligence (AI). […]
The Office of Management and Budget (OMB) has finalized its update to the Trusted Internet Connections (TIC) initiative in a memo released today. The final version of the policy opens the door for new approaches to network security, and retains most elements of the draft framework released in December 2018. […]
The Defense Information Systems Agency (DISA) is seeking a vendor to bring interoperability to a wide range of cybersecurity capabilities and create a single network for cyber defense, according to a sources sought notice released September 6. Responses are due by September 20. […]
Federal CISO Grant Schneider said today he is hopeful that the Office of Management and Budget (OMB) will release the official version of its long-awaited Trusted Internet Connections (TIC) 3.0 policy within the next two weeks. […]
North Atlantic Treaty Organization (NATO) Secretary General Jens Stolenberg announced that NATO is taking a collective defense approach to cybersecurity, including the creation of a new cyber operations center for the organization. […]
Kevin Cox, Program Manager for the Department of Homeland Security’s Continuous Diagnostics and Mitigation (CDM) Program, sat down with MeriTalk in June to talk about a range of new and ongoing program activities that are vital to improving Federal agency security. […]
Rep. John Katko, R-N.Y., introduced the State and Local Government Cybersecurity Improvement Act on Aug. 30 to help state and local governments combat cyberattacks. The legislation comes in the wake of increasing ransomware attacks targeting state and local governments, including Katko’s own state. […]
Running a customer-facing business with monetary transactions is stressful enough without the stress of threat actors E-Skimming by hacking your business networks system. […]
About two-thirds of 2019 ransomware attacks in America have targeted state and local governments, according to an Aug. 28 report published by Barracuda Networks, a cybersecurity group. […]
The Defense Department (DoD) is seeking a small business vendor to provide security services and penetration testing for its Defense Innovation Unit (DIU) outreach office, with the aim of helping the office boost its cyber defenses. […]
The Department of Homeland Security Science and Technology Directorate (S&T) released a study today that reveals how integrating enterprise mobility management (EMM) capabilities with mobile app vetting tools can improve mobile device security. […]
MeriTalk sat down in June with Kevin Cox, Program Manager for the Department of Homeland Security’s Continuous Diagnostics and Mitigation (CDM) Program, to get the latest on program priorities for the coming months and beyond. […]
The Department of Health and Human Services’ (HHS) Office of Inspector General (OIG) identified an uptick in security gaps in the Centers for Medicare & Medicaid Services’ (CMS) Medicare administrative contractors (MACs) information security programs in fiscal year 2018, according to an OIG report released Aug. 23. […]
Since the Defense Information Systems Agency (DISA) began implementing its internal vulnerability management continuous monitoring security program – Assured Compliance Assessment Solution (ACAS) – officials who have worked closely with the solution have praised ACAS’s capabilities, from its continuous passive monitoring, to its dashboarding and prospects of scaling to the cloud. DISA first issued ACAS’s […]
An ISACA white paper released this month outlines recommended guidance for organizations to better manage third-party vendor risk across their enterprises. […]
Christopher Krebs, director of the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA), today unveiled his “strategic intent” for the agency, which include CISA’s guiding principles and goal of building a collaborative cybersecurity environment in America. […]
Sen. Angus King, I-Maine, and Rep. Mike Gallagher, R-Wis., co-chairs the Cyberspace Solarium Commission, are seeking cyber professional expertise and input to help the commission tackle significant cybersecurity challenges that the United States and its allies face. […]
In the acquisition process for Federal IT, agencies are trying to secure their supply chains in myriad ways, and that includes taking great caution with acquiring refurbished equipment. […]
Researchers from Georgia Institute of Technology and Ohio State University, with National Science Foundation (NSF) funding, developed an automated system to vet cloud servers and software library systems to bolster mobile app security. […]
The National Institute of Standards and Technology (NIST) announced on Aug. 16 that it will delay action on several cybersecurity-related standards. […]
The Federal government saw a 12 percent reduction in cybersecurity incidents in fiscal year 2018, and no “major” cybersecurity incidents for the year, according to the Office of Management and Budget’s annual report on the Federal Information Security Modernization Act (FISMA). […]
A significant percentage of surveyed working adults do not grasp or implement basic cybersecurity concepts and practices, according to Proofpoint’s recently released 2018 User Risk Report. […]
The Department of Energy (DoE) upgraded its Cybersecurity Capability Maturity Model (C2M2) to help measure how organizations effectively protect themselves from cyber threats. […]